Vulnerability Details CVE-2005-0776
adm-photo.php in PhotoPost PHP 5.0 RC3 does not properly verify administrative privileges before manipulating photos, which could allow remote attackers to manipulate other users' photos.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.037
EPSS Ranking 87.3%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=111065868402859&w=2
- http://secunia.com/advisories/14576
- http://www.securityfocus.com/bid/12779
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19677
- http://marc.info/?l=bugtraq&m=111065868402859&w=2
- http://secunia.com/advisories/14576
- http://www.securityfocus.com/bid/12779
- https://exchange.xforce.ibmcloud.com/vulnerabilities/19677
Products affected by CVE-2005-0776
-
cpe:2.3:a:photopost:photopost_php_pro:5.0_rc3